AHA

Incidents involving the potential unauthorized exposure of protected health information (PHI) have become frequent occurrences within health care organizations and their business partners. Combine this with a web of complex and inconsistent federal and state laws and rules, and it is becoming essential for health care organizations to create solid and repeatable practices to operationalize the assessment and management of data security incidents.

Sophia Collaros, JD, MA, CIPP/US, privacy officer for the University of New Mexico (UNM) Health System and Health Sciences Center, shares its transition from manual incident management to an automated system and how this transformed its processes. She’ll discuss the organization’s culture of privacy compliance, internal and third-party controls, and best practices for meeting data breach regulatory obligations. In addition, Sophia will provide lessons learned from UNM’s incident management process and tools, including the use of ID Experts RADAR^TM, providing guidance as to how health care organizations can protect their patients, ensure the integrity of an organization’s reputation and comply with federal and state breach notification laws.

You Will Learn:

• What health care entities can do to protect patients and their reputations
• The key challenges for complying with the HIPAA Omnibus Final Rule
• How to keep up with changing obligations mandated by HIPAA/HITECH and state laws
• How to build an efficient and compliant incident management model to prevent breaches and fines
• Proven metrics for measuring success of your incident management and response

Speakers:

• Sophia Collaros, JD, MA, CIPP/US, Privacy Officer, University of New Mexico Health Sciences Center & Health System
• Mahmood Sher-Jan, Vice President & General Manager, RADAR Product Unit, ID Experts